Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!qt.cs.utexas.edu!zaphod.mps.ohio-state.edu!mips!pacbell.com!tandem!zorch!ditka!mcdchg!ddsw1!learn
From: learn@ddsw1.MCS.COM (William Vajk)
Newsgroups: comp.org.eff.talk
Subject: Re: Allow students to run password guessers?
Message-ID: <1991Jun28.033949.10296@ddsw1.MCS.COM>
Date: 28 Jun 91 03:39:49 GMT
References: <1991Jun24.041435.5423@athena.cs.uga.edu> <44260@fmsrl7.UUCP>
Organization: Dares No Organization Like Dis Organization
Lines: 12

In article <44260@fmsrl7.UUCP> wreck@fmsrl7.UUCP (Ron Carter) writes:

>Why don't you just run COPS yourself every so often, and have it
>send mail to the users whose passwords are easily broken?  You
>won't have to worry about crackers using dictionary searches on
>your system ever again.

Better yet, run a password checker more frequently and simply expire
anyone's password which is too easily guessed. It won't take too many
times to gently train them to use more discretion.

Bill Vajk